Password algorithm question

Foros de discusión

N M, modificado hace 7 años.

Password algorithm question

Junior Member Mensajes: 27 Fecha de incorporación: 24/02/11 Mensajes recientes

Couple of months back we upgraded from Liferay 6.1 to 6.2, and due to some reason decided to keep the old password algorithm (SHA) at that time. We are now looking at migrating the algorithm to PBKDF2. Can this be done as an independent task if not part of upgrade? Any pointers on what steps would be needed, if anyone has tried this? Would it be sufficient to update the portal-ext.properties with passwords.encryption.algorithm.legacy=SHA and Liferay would know to store the password in new algorithm next time the user logs in?

David H Nebinger, modificado hace 7 años.

RE: Password algorithm question

Liferay Legend Mensajes: 14916 Fecha de incorporación: 2/09/06 Mensajes recientes

IIRC if you change the format in portal-ext.properties it will change when the user logs in. I would definitely set the legacy property so there's no ambiguity of what format the password was in.

Come meet me at the NAS!

Samuel Kong, modificado hace 7 años.

RE: Password algorithm question

Liferay Legend Mensajes: 1902 Fecha de incorporación: 10/03/08 Mensajes recientes

You should set passwords.encryption.algorithm.legacy to the old algorithm and set passwords.encryption.algorithm to your new algorithm. Liferay will only update the password if the user sets a new password. You can select the the "Password Reset Required" flag if you want to force users to change their password.